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[57] ABSTRACT 

The present invention provides a concrete structure for 
applying a crypt key system to a television system, a 
database system or an electronic commercial transaction 
system or the like. This system consists of a broadcasting 
station, a database, a receiving apparatus, a data communi- 
cation apparatus and a user terminal. As a crypt key system, 
a secret-key cryptosystem, a public-key cryptosystem, and a 
digital signature system are used. The keys used in the 
system are either encrypted or remain uncrypted to be 
supplied by broadcasting. The present invention is effective 
in preventing an unjustified use of the database system, 
managing copyrights, and in a pay-per-view system and a 
video-on-demand system. Further, the present invention is 
effective in realizing an electronic market which uses an 
electronic data information system. 

16 Claims, 5 Drawing Sheets 
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FIG. 1 
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FIG. 2 
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CRYPT KEY SYSTEM digitization, to enable practical digitalization. So far, H.261 

standard for video conference, JPEG (jo" 11 photographic 

BACKGROUND OF THE INVENTION image coding experts group) standard for static pictures. 

MPEG t (moving picture image coding experts group 1) 

1 . Field of the Invenuon s sUndard for storing pictures and MPEG 2 corresponding to 
The present invention relates to a crypt key system the present telecast and toe high-defiiution telecast from the 

applicable to commercial trade or the like which uses a television broadcasting are available, 

television system, a database system or an electronic data ^ technology using these picture compres- 

interchange. sion technology is used for the television broadcasting or the 

2. Background Art 10 video picture recording. In addition, even television moving 
In the information-oriented society of today, besides dot- picture data which could not be dealt with before can be 

mal terrestrial broadcasting, satellite broadcasting, which is dealt with now. Then, the '"multimedia system" which deals 

referred to as broadcasting satellites (BS) and comraunica- with various data dealt with by the computer and the 

tion satellites (CS). and cable TV broadcasting, which is digitized television moving picture data has attracted interest 

referred to as CATV (cable television), using coaxial cables is as a future technology. This multimedia system is also 

or optical cables are gaining wide spread acceptance. incorporated in the data communication and can be used as 

In a satellite broadcasting or CATV broadcasting which data on the database, 

distributes several tens of channels at the same time* While me scope of usage of the database is expanded, the 

scrambled channels of movies, sport events, and music method for charging for the data use on the database, and the 

which cannot be viewed through a comprehensive contract 20 mc thod for dealing with copyright problems generated by 

are provided in addition to unscrambled general channels. In copying, transmitting other than direct use of data, and also 

order to view these scrambled channels, it Is necessary to the secondary exploitation right problem generated as a 

subscribe to descramble the channels; however, a normal result of data edition have become important problems. To 

subscription period is about one month, and it is often safely deal with charging and copyrights process, it is 

impossible to view through temporary contracts of shorter 23 required that the data cannot be used by users other than 

duration. authorized users, and data encryption is the best means for 

The inventor of the present Invention proposed, in the this purpose. 
Japanese Patent Application Laid -Open No. 6-46419 and the in addition, an electronic market system has been inves- 
Japanese Patent Application Laid-Open No. 6-141004. a tigated for converting information in various kinds of trans- 
system in which users obtain a viewing permit key from a 30 action which has been carried out by paper documents so far. 
charging center via a communication line and are charged, into electronic data to execute electronic transaction by 
and descramble programs scrambled each by a different using the electronic data interchange for transmitting and 
scramble pattern, using the viewing permit key to view the receiving data by the data communication technology. In 
programs, and proposed in the Japanese Patent Application addition, an investigation is also under way on the possibil- 
Laid-Opcn No. 6-132916 an apparatus for the operation. 35 ity of carrying out an electronic settlement on the electronic 

In these system and apparatus, those who wish to use commercial transaction system, 

scrambled programs send a request for viewing to the in commercial transactions, reliability on the transaction 

charging center via a communication line by using a com- details is required and security in the settlement is required, 

munication apparatus. The charging center transmits the ^ Consequently, in the electronic commercial transaction sys- 

viewing permit key to the communication apparatus corre- tern and electronic settlement system in which such reliabil- 

sponding to the request for viewing while charging and ity and security are demanded, it is required that the data is 

collecting a fee. encrypted so that the data will not be falsified or used 

— OsersTon" receiving the viewing permit key with the unjustifiedly. 

I communication apparatus, transmit the viewing permit key 4J in these television systems, database systems or electronic 

via direct means connecting the communication apparatus commercial transaction systems or the like, the data is 

land the receiving apparatus or via indirect means such as encrypted and thus a crypt key is required for decrypting the 

I flexible disks or the like. The receiving apparatus to which encrypted data. And the crypt key must be given to data 

/ the viewing permit key is transmitted descrambles the users; however, the processing is very troublesome because 

/ programs with the viewing permit key and then, the users ^ security and reliability are demanded. 

| use the programs. In the structure of the present invention, data cryptology 

Japanese Patent Application Laid-Opcn No. 6-132916 plays an important part In the following, a general expla- 

de scribes a system and an apparatus for selling and renting nation will be given on the data cryptology. 

of a tope or a disk on which a plurality of data scrambled ^ mc ^ oyptology. the case in which the plaintext data 

with different scramble patterns respectively are recorded to 5J M is encrypted by using a crypt key K to obtain a crypto- 

supply the viewing permit key with IC cards or the like and ffam ^ q IS represented by: 
use specific data. 

In addition, in today's information-oriented society, a 

database system has become available for mutually using c=B(K>f), 

data which are kept independently by each computer by $o and u^e case m which the cryptogram data C is decrypted by 

constituting a computer communication network by LAN us jng the crypt key K. to obtain the plaintext data M is 

(local area network), WAN (wide area network), and Inter- represented by: 
Net system mutually connecting these networks. 

In the meantime, a technology has been developed for m=D(K.C) 

reducing the information amount by compressing a televi- 65 

sion moving picture signal which could not be digitized As typical methods for the data cryptography technology, 
because of a huge amount of information as a result of there are a secret-key cryptosystem and a public-key cryp- 
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tosystem. The sccitt-kcy oyptosystem is a cryptosystem in other via a confiscation line suchas a dedicated line or 

«^d Z encryption the like or a flexible disc or the Uke. The database 2 and toe 
wmcnsanK icuci^w j ,r data communication apparatus 5 are connected by a com- 

and decryption: munication line 7 such as a communication line or CATV 

5 (cable TV) line. 

Cmkrf(K*M) The broadcasting station 1 and the receiving apparatus 4 

are connected with the broadcasting radio wave 6. The 
M=DflUCmkfl). receiving apparatus 4 and the user terminal apparatus 8, and 

The public-key cryptosystem is a cryptosystem in which the data communication apparatus 5 and the user terminal * 
a key for encryption and a key for decryption are used as io are connected with a direct means such as a connection cable 
crypt keys and the key for encryption is made public but the or an indirect means such as a flexible disc 
key for Wyption is not made public. The key for encryp- In FIG. 1. what is shown with a solid line is a path of 
tion is referred to as a public-key Kb while the key for information which is not encrypted. What is shown with a 
decryption is referred to as a private-key Kv. To use mis broken line is a path of data which is encrypted, 
cryptosystem. an information sender encrypts the plaintext 15 In this system, the database 2 prelirninarily supplies a 
data M by the pubic-key Kb of a receiver: permit key Kp (hereinafter referred to as a •permit key ) 

including the crypt key Kd which is different from one data 
to another to the broadcasting station 1. The permit key Kp 
Cmbk?£(Kb,M), is explained In such a manner that the permit key Kp 

• 4 . Ammt ^ c h V « 20 constitutes the crypt key Kd only for better understanding, 
and the receiver receives the datt and decrypts a by a 20 in some cases, the crypt key Kd is supplied without being 
private-key Kv to obtain the plaintext data M CDCTyptcd< ^ m othTcases it is encrypted by using the 



common crypt key K0: 



M=D(Kv,C Crakb). 



In this public-key cryptosystem. cryptanalysis is very diffi- 25 CkdkO=E(K0^dX 

cult and is supplied as an encrypted crypt key CkdkO. 

As an application of the data cryptography technology, in the case where the crypt key Kd is encrypted and 

digital signature is performed as an electronic data authen- supplied, a common crypt key K0 for decrypting the 

tication means to ensure the reliability of the data. encrypted crypt key CkdkO is supplied to users. This com- 

The digital signature is used with a secret-key or a mon crypt key KO is supplied when users register with the 

public-key. Generally, the public-key is used in the digital database, or it is supplied to the users together with the 

signature. encrypted data Cmkd when the encrypted data Cmkd is 

In the digital signature which is carried out by using the transmitted, 

public-key. the signer obtains a digital signature by encrypt- ^ ( a ) In die case where the crypt key is not encrypted: 

ing a document m to which the document M is compressed In this crypt key system, the broadcasting station 1 

with hash algorithm, using the private-key Kv of the signer: broadcasts the crypt key Kd supplied from the database 2, by 

using the radio wave 6. The receiving apparatus 4 supplies 
the received crypt key Kd to the user terminal 8 so that the 

Smkv=E(Kv,m) ^ uscr terminal 8 stores the received crypt key Kd in a 

and transmits the original document M or the compressed * recording me4iiuB such as a semiconductor memory, a 

document m and the digital signature Smkv to the receiver. flexible disc, a hard disc or the uke. 

^receiver decrypts the digital signature Smkv by using The users who wish to use the data request for the use of 

me^bu^key Kbtfme signer the data M to the database 2 via the coinmunicat,on line 7 

ine puouc Key is* 01 mc ugu ^ me data communication apparatus 5. 

The database 2 which has received the request for use of 

m =rxKb,Smkv). the data M encrypts the data M by the crypt key Kd which 

* . - is a permit key Kp: 

When m*=m is established, it is recognized that the signature r 

is correct. 

As a method for providing these crypt keys to users, the 50 CmfaKKdM), 

inventor of the present invention proposed an invention an( j transmits the encrypted data Cmkd to the data commu- 

en titled "crypt key system" in the prior Japanese Patent nication apparatus 5 of users via the communication line 7 

Application No. 6-70643. and charges with the charging center 3. 

In the generally practiced crypt key system, the crypt key The data communication apparatus 5 supplies the 

is provided only to users while the crypt key is provided to 53 received encrypted data Cmkd to the user terminal 8 while 

persons other than the users in the crypt key system of this th c US er tenninal 8 decrypts the encrypted data Cmkd by the 

prior invention. crypt key Kd which is stored in the recording medium: 

FIG. 1 shows the structure of the crypt key system 

proposed in the Japanese Patent Application No. 6-70643. M«D(KdCmkd). 

This system comprises a broadcasting station 1 for mul- 60 j u 

tiplex broadcasting such as BS. CS. terrestrial broadcasting (b) In the case where the crypt key is encrypted and the 

or FM (frequency modulation) or the like or data common crypt key is preliminarily distributed to users: 

broadcasting, a database 2. a charging center 3. a receiving In this crypt key system, when users register to use the 

apparatus 4. data communication apparatus 5 and a user's database, the common crypt key KO is supplied to users with 

terminal 8 65 ^ c ^cording medium such as ROM or flexible disc and the 

The broadcasting station 1 and the database 2, and the supplied common crypt key KO is stored in the user terminal 

database 2 and thc charging center 3 are connected to each 8. 



03/01/2004, EAST version: 1.4.1 



5,740,246 

5 6 

The database 2 encrypts the crypc key Kd by using the The data communication apparatus 5 supplies the 
common crypt key KG: received encrypted data Crakd and the common crypt key 

KO to the user terminal 8. The user terminal 8 decrypts the 
encrypted crypt key CkdkO which has been stored in the 
CkdkD=E(Kojcd), 5 recording medium by the common crypt key KO: 

and supplies encrypted crypt key CkdkO to the broadcasting 

stal ^ 0D Kd=£XKO,Cblk0), 

The broadcasting station 1 broadcasts the received 
encrypted crypt key CkdkO supplied from database 2 by ^ ^gcypts the encrypted data Cmkd by the decrypted 

using the radio wave 6. The receiving apparatus 4 supplies "> crypt j^y Kd: 
the received encrypted crypt key CkdkO to the user terminal 
8 which decrypts the encrypted crypt key CkdkO in the 
beginning by the preliminarily stored common crypt key KO: M=D(Kd,Cmkd). 



Kd=D(KO,CkdkO), 



SUMMARY OF THE INVENTION 



The present invention provides a concrete structure for 
and stores the decrypted crypt key Kd in the recording applying the invention of the crypt key system described in 
medium such as a semiconductor memory, a flexible disc or mc p^v^s applications to the television system, the data- 
a hard disc. base system or the electronic commercial transaction system 

Users who wish to use the data requests for the use of the ^ mc ^ 
data M to the database 2 via the communication line 7 by ^ stcm compriscs a broadcasting station, a database, 
using the data coirununication apparatus 5 - a rccciv ing apparatus, a data communication apparatus, and 

The database 2 which receives the request for thedata .use ^ ^ ^ sccrct -key cryp- 

encrypts die dau Mw^ M tosys|cm ^ me pubUc /^ v ^system are used. In 

M by the crypt key Kd: addition, the digital signature Is used, and the crypt key is 

supplied through broadcasting with either encrypted or 

Cmkd=E(Kd r M), UnCTVpted. 

. , . . . „ - . The present invention is effective in preventing unjustified/ 

and transmits it to the dau comm^cadon ap^ms 5 vta M * nunagement in a database syWaV, 

the commumcadoD hne 7 and charges w.th the chargmg ^.^^^Z^ a video-on-demand system.|' ( 

ccl ^ 3 ' ... . . . ... , K _ Furthermore, the present invention is a useful means in the i 

The data con^un.caUon apparatus Si uppUe. toe reaU2aUon of „ electronic market usia toe electronlc ^ t 

received encrypted data Cmkd to the user terminal 8 which in^-chance system. 

decrypts the encrypted data Cmkd by the stored crypt key J5 g y 

Kd: BRIEF DESCRIPTION OF THE DRAWINGS 

FIG. 1 is a block diagram of a crypt key system according 
M=D(Kd,Cmkd). to the prior applications. 

(c) In the case where the crypt key is encrypted and the 40 FIG. 2 is a block diagram of the crypt key system 
common crypt key is distributed to the user together with the according to a first embodiment of the present invention, 
encrypted data: fig. 3 is a block diagram of the crypt key system 

In this crypt key system, the database 2 encrypt the crypt according to a second enibodlment of the present invention, 
key Kd by the common crypt key KO: FIG. 4 is a block diagram of the crypt key system 

45 according to third and fourth embodiments of the present 
Ckdk0=£(K0,Kd) Invention. 
... ^ . . . . ^ , FIGS. 5(a), S(b) and 5(c) are block diagrams of fifth 

and supplies it to me b^adcasungj ~ /; embodiment accoroing 10 die present invention. 

The broadcasting station 1 broadcasts the encrypted crypt * r 

key CkdkO which has been supplied from the database 2, by 30 DETAILED DESCRIPTION OF THE 

using the radio wave 6. The receiving apparatus 4 supplies INVENTION 
the received encrypted crypt key CkdkO to the user terminal 

8. The user tcrrninal 8 stores the encrypted crypt key CkdkO The present invention is a crypt key system applicable to 
in recording medium such as a semiconductor memory, a cornmercial trade or the like which uses a television system- 
flexible disc, or a hard disc or the like. 55 a database system or an electronic data interchange. In the 

Users who wish to use the data request for the use of the following description, numerous specific details are set forth 
data M to the database 2 via the communication line 7 by to provide a more thorough description of the present 
using the data communication apparatus 5. invention. It will be apparent, however, to one skilled In the 

The database 2 which receives the request for the data use art. that the present invention may be practiced without these 
encrypts the data M which is demanded for use by the crypt 60 specific details. In other instances, well known features have 
l^y not been described In detail so as not to obscure the present 

invention. 

The cryptography system, in general, includes a secret- 
Cmkd=fi(K(tM), 1^ cryptosystem and a public-key cryptosystem. The 

and transmits it to the data communication apparatus 5 via 65 secret-key cryptosystem is a cryptosystem in which the same 
the communication line 7 together with the common crypt crypt key is used for encryption and decryption. Although 
key KO and charges with the charging center 3. this cryptosystem requires relatively shorter time for encryp- 
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tion or decryption, once the secret-bey is known, the cryp- 
tion can be cryptaiialyzed. 

The public-key cryptosystcm is a cryptosystem which 
wovidestwo keys: a key for encryption open to the public 
as a public-key and a key for decryption not open to the 
public. The key for encryption is referred to as a public key 
and the key for decryption is referred to as a private key. A 
party transferring information encrypts the information with 
a public-key of a receiving party and the receiving party 
decrypts the information with a private-key. While this 
cryptosystem requires relatively longer time for encryption 
or decryption, the private-key is hard to find and it is very 
difficult to cryptanalyze the cryption. 

Embodiments of the present invention are now described 
by using FIGS. 2-4. 
Embodiment 1 

A system shown in FIG. 2 is a crypt key system of the 
embodiment 1 in which the present invention is applied to a 
database system This system comprises a broadcasting 
station 11 which uses either a multiplex broadcasting by BS, 
CS a terrestrial wave television, or FM broadcasting or the 
like, or data broadcasting by a digital broadcasting, a data- 
base 12 in which various kinds of data including moving 
picture data is stored, a charging center 13. a receiving 
apparatus 14 for receiving the data broadcast by the broad- 
casting station 11. a data communication apparatus 15 for 
communicating with the database 12 and the user terminal 
18 for using the data. 

The database 12 and the broadcasting station U. and the 
database 12 and the charging center 13 are connected with 
a direct means for connecting with a communication line 
such as a dedicated line or an indirect means such as a 
flexible disc or the like. The database 12 and the date 
communication apparatus 5 are connected with a commu- 
nication line 17 such as a cc<nmuiucation line, or CATV line 
or the like. Then, the broadcasting station 11 and the 
receiving apparatus 14 are connected by radio wave 16 such 
as a terrestrial wave television broadcasting, satellite tele- 
vision broadcasting. CATV broadcasting, FM broadcasting 
or a satellite data broadcasting or the like. The receiving 
apparatus 14 and the user terminal 18, and the data com- 
munication apparatus 15 and the user terminal 18 are 
connected with a direct means such as a connection cable or 
an indirect means such as a flexible disc or the like. * 
What is shown with a solid line in FIG. 2 is an uncrypted 
data path and what is shown with a broken line is an 
encrypted data path. ^ . 

Incidentally, date exchange between the database 12 and 
the broadcasting station 11. and the database 12 and the 
charging center 13 are., in principle, carried out with a 
dedicated line or a flexible disc. In addition, a public line, a 
broadcasting satellite, a communication satellite or a terres- 
trial wave broadcasting can be used. In such a case, the data 
is encrypted. 

In this system, the secret-key cryptosystem and the 
public-key cryptosystem are used. 

The database 12 prepares the public-key Kbd and the 
private-key Kvd to supply the public-key Kbd to the broad- 
casting station 11. The broadcasting station 11 which 
receives the public-key Kbd broadcasts it by a teletext 
multiplexing broadcasting using scanning lines during the 
retrace blanking interval period of an analog television 
picture signal, the data broadcasting using a sub audio band 
of the analog television audio signal. FM multiplex data^ 
broadcasting or digital data broadcasting. ' 63 

Further, in this case, a digital signature of the database 11 
can be used with the public-key Kbd. 



The data may be supplied without encrypting the menu in 
which the titles of data which can be used, the content 
introduction of the data, product catalogs, order forms, blank 
checks, the copyright information are included for the con- 
venience of the data use. 

The receiving apparatus 14 which receives the transferred 
public-key Kbd sends the public-key Kbd to the user ter- 
minal 18. The user terminal 18 which receives the trans- 
ferred public-key Kbd stores the public key Kbd in the 
recording medium such as a semiconductor memory, a 
flexible disc, or a hard disc or the like. 

Users who select the data which they request for use by 
means of menu or the introduction of contents request for the 
use of data M to the database 12 via a communication line 
17 by the data communication apparatus 15. 

At this time, the user encrypts the user's own secret-key 
Ksu by the public-key Kbd of the database 12 which has 
been received from the database 12: 



25 



30 



35 



20 Ckiukbd=fi(Kbd t Kw) 

and transmits it to the database IX 

The database 12 decrypts the encrypted secret-key 
Cksukbd of the user by the private-key Kvd: 

K»u=rXKvd.Cksukbd) 

and encrypts the data M which is requested for use by the 
decrypted user secret-key Ksu: 

Cmksu=B(Kni>f) ? 
and transmits it to the data comnuinication apparatus 15 of 
the user via the communication line 17. 

The user who receives the data Cmksu encrypted by own 
secret-key Ksu decrypts the encrypted data Cmksu with the 
user terminal 18: 

40 M=rXKsu,Cmksu) 

to use it . 

This system is provided with charging center 13 which is 
incorporated with the database 12. Charging center 13 is 
used when the data is provided on pay basis. In the case 
where the data is one which is provided with free such as 
shopping information or the like, charging center 13 is not 
used. However, even the data provided with free such as 
shopping information or the like, the charging center is used 
In the case where charges are to be settled along with orders. 
Embodiment 2 

FIG. 3 shows a crypt key system according to embodi- 
ment 2 in which the present invention is applied to a video 
on demand (VOD) system which broadcasts television pro- 
grams corresponding to the requests from users. 

This system comprises a CATV station 21, a charging 
center 23. a receiving apparatus 24. a data communication 
apparatus 25 and a user terminal 28. 
The charging center 23 Is used when the television 
to program is provided on pay basis but not used when the 
television program is provided without charges along with 
advertisement. 

In this system, the encrypted television broadcast pro- 
grams and the crypt key are transmitted through CATV line 
27 which is a single path. 

The CATV station 21 and the charging center 23 arc 
connected with a direct means for electrical connection with 



45 



50 



55 
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a convocation line such as a dedicated Ike or the like, or cations Nos. 6-64889. 6-237673. 6-264199. 6-264201 and 
an indirect means such as flexible disc or the like. The CATV 6-269959 proposed by the present inventor 
station 21 and the receiving apparatus 24. the CATV station This crypt key system can bealso^Ued to a case where 
TZ melta conimunicluoTap^ratus 25 are connected a recording medium such as a J^^^ 
with the cable 27 ^ ap = ^ and *e 5 S 

user terminal 28 to data conmiumcation f*™^** JapaTcse Lud-Opcn Patent Application No. 6-132916. pro- 
the user terminal 28 are connected with a direct rncans such p^ nt foventoT 

as a connection cable or an indirect means such as a flexible lDve ktions of previous applications are explained 

disc or the like. herein below 

What is shown with a soUd line in FIG. 3 is an uncrypted 10 M of ^ ^ copyright management system 

dau path and what is shown with a broken line is an described in Japanese Patent Application No. 6-64889 is 
encrypted data path. described as follows. 

Incidentally, the data exchange between the CATV station To control the copyright in the display (including the 
21 and the charging center 23 is carried out through a process to sound), storage, copy, edit and transfer of digital 
dedicated line or a flexible disc in principle. Additionally, the is data in the database system including a real time transmis- 
data exchange is also carried out by means of a communi- s ion of a digital picture, any one or a plurality among a 
cation line or a broadcasting satellite, a communication program for managing the copyrights, a copyright informa- 
satellite and a terrestrial wave broadcasting. In this case, the tion and a copyright management message are transmitted, 
data is encrypted. when needed, in addition to a permit key for allowing the use 

In this system, the CATV system is treated as one kind of 20 of encrypted data corresponding to use requests from users, 
database. As a crypt key method, the secret-key cryptosys- The copyright management message is displayed on a 
tem and the public-key cryptosystem are adopted. Users screen and advises or warns the user in case the data is 
who use this VOD system either register their own public- utilized beyond the conditions of user's request or the 
key Kbu with the CATV station 21 in advance, or transmit permission. The copyright management program watches 
the public-key Kbu by using the communication apparatus 25 and controls in order that the data is not utilized beyond the 
25 at the time when the request is placed for use. conditions of user's request or the permission. 

The CATV station 21 encrypts the secret-key Ksb of the The copyright management program, the copyright infor- 
CATV station 21 by the transmitted public-key Kbu of users: mation and the copyright management message are supplied 

together with a permit key in some cases, or they are 
30 supplied together with data in some other cases. Or. a part of 
Ckst*bu=E(Kbu,Kflb) them is supplied together with the permit key. and other part 

. . . . ^ . is supplied with the data, 

and transitu it to the date coin^ For ^ me permit key. the copyright management 

the CATV line 27. ^ . ^ message, the copyright information and the copyright man- 

The television program M is encrypted by using the 35 agemcnt program, there are the following three cases: a case 
secret-key Ksb of the CATV station 21 where they are transmitted with encryption, and upon using. 

the encryption is decrypted, a case where they are traosmit- 
Cmkst>=E<Kib*i) ted with encryption and remain in encrypted except being 

decrypted only when they are displayed, and a case where 
and is broadcast to the receiving apparatus 24 via the CATV 40 they are not encypted at all. 

line 27. An outline of the data copyright management system 

The user decrypts the received encrypted secret-key Cks- described in Japanese Patent Application No. 6-237673 is 
bkbu of the CATV station 21 by the private-key Kvu of user: described as follows. 

This database copyright management system comprises a 
45 database in which uncrypted data is stored, a data supply 
KstnD(Kvu,Ckftbkbu) means of a broadcasting station such as satellite broadcast- 

. , . - , . ing station for broadcasting the encrypted data from the 

and decrypts the encrypted television program Cmksb using ^tabasc. or of a recording medium such as a CD-ROM 
the decrypted secret-key Ksb of the decrypted CATV station wnere encypted data from the database is recorded, a 
21 * 50 communication network, a key control center for controlling 

a crypt key, and a copyright management center for con- 
M=D(Ksb Cmksb) trolling copyrights of the database. Then, the database 

utilization program for using the database, the copyright 
for U5 e. management program for controlling the copyrights, a first 

In addition, this crypt key system is applicable, if encryjv 55 crypt key and a second crypt key are used, 
tion is available, to the television broadcasting other than A first user registers with the key control center in 
CATV, audio broadcasting, or data broadcasting. As a advance for using the database. At that time, the database use 
method for transmitting the crypt key from the broadcasting program is distributed. This database utilization program 
station, the teletext multiplex broadcasting using the scan- includes information on the first user and a program for 
ning lines during the retrace blanking interval of an analog 60 generating a crypt key unique to the first user with a 
television picture signal, the data broadcasting using an sub predetermined algorithm by using the information, 
audio band of the analog television audio signal. FM mul- The data is stored in the database without encryption, and 
tiplex data broadcasting, or digital data broadcasting can be when it is distributed by broadcast or through a recording 
also used. medium or a communication network, the data is encrypted 

In addition, this crypt key system can be used when the 65 by the first crypt key to an encrypted data, 
crypt key is distributed in the data copyright management The encrypted data is stored in a recording medium such 
system which is described In prior Japanese Patent Appli- as a semiconductor memory of the first user terminal, a 
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flexible disc or hard disc, when distributed via broadcasting 
or communication network, is preserved as is when recorded 
in a CD-ROM recording medium and distributed, or is 
stored in the recording medium such as a semiconductor 
memory of the first user terminal, a flexible disc or a hard 
disc or the like. 

The first user who uses the data directly from the database 
requests a key for decrypting and using the encrypted data 
to the key control center via the communication network. 
Information concerning the first user is presented at this 
time. 

The key control center transfers the information on the 
first user to the copyright management center while the 
copyright management center uses information concerning 
the first user to generate a crypt key unique to the first user 
by a predetermined algorithm, and the generated first user 
crypt key is used to encrypt the copyright management 
program, the first crypt key and the second crypt key to be 
transferred to the key control center. 

The copyright management program encrypted by using 
the crypt key generated by using the information on the first 
user is unique to the first user. 

The key control center which receives the encrypted 
copyright management program transmits to the first user 
terminal each of the encrypted copyright management 
program, the first crypt key and the second crypt key via the 
communication network. Then, the first user stores the 
received encrypted copyright management program, the first 
crypt key and second crypt key in a recording medium such 
as a semiconductor memory, a flexible disc, or a hard disc. 

The first user generates the crypt key unique to the first 
user by using a database utilization program which is 
distributed in advance and using information on the first user 
with a predetermined algorithm. Then, the first user decrypts 
the encrypted copyright management program, the 
encrypted first and second crypt keys, and the encrypted data 
is decrypted by the decrypted first crypt key. 

In the case of storing, copying and transferring the 
decrypted data, it is encrypted by the second crypt key 
decrypted with the decrypted copyright management pro- 
gram. Then, the encrypted data is stored in the recording 
medium such as the semiconductor memory of the first user 
terminal, the flexible disc or the hard disc or the like. When 
the first user uses the stored encrypted data, it is decrypted 
by using the second crypt key. Then, this operation is 
repeated for primary use of the data. 

When the encrypted data is copied on the external 
memory medium or is transferred to the second user termi- 
nal via the communication network, the first crypt key and 
the second crypt key are disused by the copyright manage- 
ment program. The first user. then, cannot use the encrypted 
data. 

At this rime, when the encrypted data is stored in the first 
user terminal, uncrypted information on the first user is 
added to the encrypted data which is stored. 

In the case where the first user uses the encrypted data 
again, the first user obtains the first crypt key and the second 
crypt key from the copyright management center. With the 
regrant of the first crypt key and the second crypt key, it is 
confirmed that the second user exists who has received the 
copy or the transfer of the encrypted data from the first user, 
and the existence of the second user is recorded on the 
copyright management center. 

The second user who has received the copied or trans- 
ferred encrypted data requests for the secondary use of the 
encrypted data to the copyright management center. The 
second user is not required to register with the key control 
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center in advance, unlike the first user. At the time of the 
request for data use. with the presentation of the information 
of the first user from which the encrypted data has been 
copied or transferred to the copyright control center, the 
5 request is accepted. If the first user information is not 
presented at this time, the user is recognized to be the first 
user and not the second user who has received the copy or 
the transfer of the encrypted data from the first user. Thus, 
the request for the secondary use is not accepted. 
io The copyright management center which accepts the 
request of the secondary use transmits the second crypt key 
for decrypting the encrypted data, the third crypt key for 
reencrypting and redecrypting the decrypted data and the 
copyright management program for the aforementioned 
15 decryption, the reencryption and redecryption. to the second 
user. 

The outline of the copyright management system 
described in the Japanese Patent Application No. 6-264199 
is described as follows. 
20 This copyright management system uses the first public- 
key prepared by the user, the first private-key corresponding 
to the first public-key. the second public-key, the second 
private-key corresponding to the second public-key, and the 
first secret-key and the second secret-key prepared by the 
25 database. 

The database side encrypts the data which is not 
encrypted by using the first secret-key. and encrypts the first 
secret-key by the first public-key. and the second secret-key 
by the second public-key. These encrypted data and the 
30 encrypted first secret-key and second secret-key are trans- 
mitted to users. 

The user decrypts the encrypted first secret-key by using 
the first private-key and decrypts the encrypted data by the 
decrypted first secret-key for use. Then, the user decrypts the 
35 encrypted second secret-key by the second private-key so 
that the decrypted second secret-key is used as a crypt key 
for data storage, copy and transfer after the decryption of the 
data. 

The outline of the data copyright management system 
40 described in the Japanese Patent Application No. 6-264201 
is described as follows. 

In the case where new data is produced by editing a 
plurality of encrypted data which are obtained from the 
database and is encrypted to be supplied to others, the crypt 
45 key for a plurality of data which are original materials and 
edit program as editing process with a digital signature are 
used as a use permit key. 

When the user who has received the edited and encrypted 
data requests for use by presenting the digital signature to 
50 the copyright management center, the copyright manage- 
ment center recognizes the editor on the basis of the digital 
signature. Only in the case where it is recognized that the 
editor is the authorized user of the edited data, the crypt key 
for use is provided to those who request for use. 
55 The outline of a method described in the Japanese Patent 
Application No. 6-269959 is explained as follows. 

A fust user receives the encrypted data in which the 
original data is encrypted by the first crypt key from the 
database and decrypts the data at the time of use. After that. 
60 the data is encrypted by a second crypt key generated with 
a predetermined algorithm using one of the first crypt key. 
the first user data, and the data usage frequency or a 
combination thereof, and is acred, copied and transferred. 
When the second user requests the secondary use of the 
65 data, the data copyright management center generates the 
second crypt key with a predetermined algorithm by using 
one of the first crypt key of the original data, the first user 
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data and the data use frequency or a combination thereof to The data managing center 33 which has received the 

be provided to the second user. request for use from the user encrypts the data M by the 

The second user to whom the second crypt key is provided secret-key Ksdi: 
decrypts the encrypted original data by using the second 

Embodiment 3 

The system shown in FIG. 4 is a crypt key system of m& j^^ts it to the user tenninal 38. At that time, the 

embodiment 3 where the present invention is applied to the private-key Kvd of the data managing center is encrypted by 

database system or the VOD system. ^ public-key Kbu of the user who has requested the use: 

Like the crypt key system shown in FIG. 3 of embodiment io 
2, in this crypt key system, the television broadcasting 

programs and the crypt key pass through a single path which ckvdkbu=E(KbujCvd) 
is the CATV line; however, these may pass through different 

path as well. t0 transmitted to the user terminal 38. 

This system comprises a CATV station 31 for data 15 The user who receives the encrypted private-key Ckvdkbu 
broadcasting, a data managing center 33 such as database, a of the data managing center decrypts the encrypted private- 
video system or the like, a receiving apparatus 34, a data key Ckvdkbu by the user private-key Kvu: 
communication apparatus 35 and a user terminal 38. 

The data managing center 33 and the CATV station 3 1 are 

connected with a direct means for connecting with a com- 20 Kvd=D(Kvu£kvdkbu), 

munication line such as a dedicated line or the like or with dccrypU tnc encrypted secret-key Cksdikbd by the 

an indirect means such as flexible disc or the like. The CATV decryptcd private-key Kvd of the data managing center 
station 31 and the receiving apparatus 34, and the CATV 
station 31 and the data communication apparatus 35 are 

connected with the CATV line 37. Incidentally, instead of 25 Ksdi*D(Kvd,ckjdikbd), 
the CATV line 37. a communication line which is appro- 
priate for data broadcasting or available for data communi- decrypts the encrypted data Cmksdi by the decrypted secret- 
cation can be used. The receiving apparatus 34 and the user key Ksdi of the data managing center 
terminal 38. and the data communication apparatus 35 and 
the user terminal means are connected with a direct means 30 
such as a connection cable or with an indirect means such as M-rxK^Crnkfidi) 
a flexible disc. ^ uscs it 

What is shown with a solid line is an uncrypted data path Embodiment 4 

in FIG. 4 and what is shown with a broken line is an S inc« the system structure of embodirnent 4 is me same as 

encrypted data path. 35 cmbodimcnt 3 shown in FIG. 4, explanation thereof will be 

The data is exchanged between thc data mana gi n g center om jtted. 

33 and the CATV station 31 in principle with a dedicated ^ systcm adopU ^ SCC ret-key cryptosystem and the 

line or a flexible disc. In addition, the data may be also pubUc . kcy cryptosystem as the crypt key system. In embodi- 

exchanged with a communication line, a broadcasting mcm 3 mc private-key Kvd of the data managing center is 

satellite, a communication satellite and a terrestrial wave 40 cnayptcd by mc public-key Kbu of users who request for 

broadcasting. In such a case, the data is encrypted. use wWle ^ cmbodimC nt 4i fo c private-key Kvd of the data 

This crypt key system adopts the secret-key cryptosystem raanagiog cenlcr is distributed in advance by using the IC 

and a public-key cryptosystem. ^ 0f ^ ^ and slofed in a uscr terminal. In embodiment 

The data managing center 33 prepares and supplies to the 3 ^ m is distributed corresponding to the request for data 

CATV broadcasting station 31 the public-key Kbd and the 45 usc whUc ^ cmbodiracn t 4 the data M is broadcast by 

private-key Kvd common in all the data to be supplied and mcans of ^ c cxrv line or the satellite broadcasting irre- 

the secret-key Ksdi which is different from one data to yc of ^ t fa ^ usc 

another. The CATV station 31 encrypts the received secret- mc uscr SUD8cribcs a comprehensive contract for 

key Ksdi by using the public-key Kbd of the data managing using ^ databa&e witn ^ ^ waging center, the 

center 33: 50 private-key Kvd of the data managing center which is 

commonly used with all data to be supplied is in advance 

CfcadikbdsE(Kbd t Kadi) distributed to users by a recording medium such as an IC 

card or the like or a CATV line 37. and stored in the 

and broadcasts it by multiplex teletext broadcasting using scmiconductor mcraory of the user terminal 38. the hard disc 

scanning lines during the retrace line blanking interval of the 55 fl flcx |bie disc 

analog television picture signal, the data broadcasting using ^ ^ raana g ing ccnlcr 33 prepares a secret-key Ksdi 

a sub audio band of the analog television audio signal, FM diffcrcnt for ^ ch supplying data and a public-key Kbd. and 

multiplex broadcasting, or digital data broadcasting. SU ppU Cfi them to the CATV station 31. The CATV station 31 

For convenience of the data use. menu showing nfles of wWd) ^ ^ encrypts the secret-key 

available data and introduction of data outline can be also 60 ^ . ^ ^lickev kbd: 
supplied without encryption to promote thc usc. 

User who selected the desired data requests by thc menu 

or the content introduction requests for using thc data to the ckadikbd^ocbdjudi) 
data managing center 33 via the CATV line 37 by using the 

data communication line 35 through the CATV station 31- At 65 and broadcasts it by means of teletext multiplex broadcasl- 

this time, the user transmits own public-key Kbu to the data ing using scanning lines during the retrace blanking interval 

managing center 33. of the analog television picture signal, data broadcasting 
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using the sub audio band of the analog television audio Digital signature is made to the public-key Kbd of the data 
signal, FM multiplex data broadcasting or digital data broad- managing center by using the private-key Kvd of the data 
casting. managing center: 

At this time, for the convenience of the data use. menu 
showing the rifles of data which can be used, or a content 5 
introduction for explaining the data outline for promoting 
the data use can be also supplied without encryption. Then. mc encrypted public-key Ocbdkbui different from one 

The CATV station 31 encrypts the data Mby the secret- uscr to ^ the digital signature Skfodkvd are sent to 
key Ksdi: the broadcasting station to broadcast the received encrypted 

10 public-key Ckbdkbui and the digital signature Skbdkvd. 
At this time, the uncrypted user Identification information 
Cmkadi^ECKadU^ of ^ uscr fa ^outcast by i0 the encrypted public- 

and broadcasts it via the CATV line irrespective of the key Ckbdkbui if necessary. 

request for use The user who has received the broadcast encrypted 

The user incorporates desired data out of the data which 15 public-key Ckbdkbui and the digital signature Skbdkvd 

is broadcast via the CATV line on the basis of the menu or decrypts the encrypted Ckbdkbui of the data managing 

the content introduction into the user terminal by using a center by the private-key Kvui: 

receiving apparatus 34. 

The user decrypts the encrypted secret-key CfcdikWby ^ Kb ^ vui ^ bdkbui) 

the private-key Kvd of the data managing center which is 

stored in the semiconductor memory in the user terminal 38. ^ stores the decrypted public-key Kbd of the data man- 

a hard disc or a flexible disc: aging center in the user terminal. 

The user recognizes the digital signature Skbdkvd by the 

rs received public-key Kbd of the date managing center: 

Ksdi=D(Kvd.CkKiikbd) ° ^ 

and decrypts the encrypted data Crnksdi by the decrypted Kbd=D(Kbdiskbdkvd), 
secret-key Ksdi: 

and if it is justified, uses the stored public-key Kbd of the 
30 data managing center. 

M=D(KfldUc*iikbd) m jj^j manner, a crypt key different from one user to 

for another can be distributed. 

Other modifications of the embodiment for distributing Embodiment 7 
. . .„ . „ n . n : nftH Users present their own public-key Kbu to the data 

E^^meT 5 35 managing center at each time of access or request to the data 

In aforementioned embodiments, the public-key Kbd of paging cc ^?* *** JJ} 
the data managing center is broadcast froia the broadcasting *e revest tromthe user encrypts the requested data M by 
station instead of the communication line. Thus, it Is impos- pu*b*tey Kbu of the user: 

sible to confirm whether the public-key Kbd is justified or ^ 

Cmkbu=fi<Kbu r M) 

In such a case, the private-key Kvd of the data managing 
center is used for digital signature with the public-key kbd and sends it to the broadcasting station. The broadcasting 
of the data managing center: station broadcasts the received encrypted data Cmkbu. 

45 The users who receives the broadcast encrypted data 
Crnkbu decrypts by the private-key Kvu of the user: 

SUxfcv*=£(Kv(UCbd) 

to be broadcast together with the public-key Kbd of the date M=D(Kvu,Cn*bu) f 
managing center. 

The user recognizes the digital signature Skbdkvd by the so and uses it. 

received public-key Kbd of the data managing center FIGS. 5(a) through 5{c) show the modified examples 

which use the crypt key system of the present invention. 

Each example shown in the figures is an application of the 

KM=D(Kbd.Skb<fcyd) crypt key system in electronic market transaction using the 

a u *< ^*-a m .ms~ ir*« » electronic data interchange system, to the credit settlement 

and when it is justified, uses the public-key. ... . - , . 4 . ^ . 

"r ... , ' r in retail shops shown in FIG. 5 (a); the settlement by means 

EmrxKUmen 0 „ ananinn of an electronic check shown in FIG. 5 (b); and the whole 

In embodiment 5. m the : case where the data managkg w 

who afe members is also preliminarily regiLed with the » 

data managing ceoier. . ,,„vwi„f wholesaler 45 such as a maker or the like which is a World 

The data managing center encrypts the public-key Kbd of *™ £77 /wwww«v„ on the Internet 
the data managing center by the public-key Kbui of each Y l< £? cb 0*™™) scrver on * e u,,erneL 

cnuxxument o 

uscr: 65 In the credit settlement in the shop shown in FIG. 5 (a). 

the shop 43 broadcasts data Ms such as order form format 
ckbdkbui-BOtbuUCbd). credit card format, advertisements, catalogs, preview, prod- 
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ucis description, and content introduction of a database, and 
menu, charge schedule and price list, via the satellite 41 and 
a C/VTV line. 

User 42 who receives the data Ms such as order form 
format and a public-key Kbs of the shop 43 encrypts the user 
secret-key Ksu by the public-key Kbs of the shop 43: 

Cksukb$=E(Kb3>Kfu) 

and enters Mu items such as the order content, the payment 
amount and a credit card number with encryption by the 
secret-key Ksu of user 42 on the basis of information such 
as advertisement catalog, products description and charges/ 
prices List: 



18 



10 



15 



Embodiment 9 

In the settlement by means of electronic checks shown in 
FIG. 5 (6). the bank as financial organization 44 broadcasts 
the blank check format Mf which is digital data attached 
with the public-key Kbf of the bank 44 via the satellite 41 
or the CATV line. 

The user 42 who receives the blank check format Mf 
encrypts the secret-key Ksu of the user 42 by the bank 
public-key Kb: 

Cksukbf^>E(KbCKfiuX 

enters Mu items concerning a payee and the payment 
amount with encryption by the secret-key Ksu of the user 42: 



Cmuksu=B(Ksu>Iu), 

when needed, compresses Mu into a compressed document 
mu and sign by digital signature by the private-key Kvu of 
the user 42: 



when needed, compresses Mu to the compressed document 
mu. and signs by digital signature by using the private-key 
Kvu of the user 42: 



SnrnkvusEflCvxynu), 

23 

and transmits it to shop 43 attached with the public-key Kbu 
of the user 42 via the network 47. 

The shop 43 which has received the order decrypts the 
encrypted secret-key Cksukbs of the user 42 by the private- 
key Kvs of the shop 43: 30 



Smukvu=E(KYU4mi) 

and transmits them attaching the public-key Kbu of the user 
42 and the encrypted secret-key Cksuldbf of the user 42 
which is encrypted by the public-key Kbf of the bank 44 to 
the bank 44 via the network 47. 

The bank 44 which receives the described check uses the 
bank private-key Kvf to decrypt the encrypted secret-key 
Cksukbf of the user 42: 



so 



Ksv4XKvB,Cksutt»), 

Ksu=D(Kvf,Ckffukbfy t 

and decrypts the encrypted order document Cmuksu by the 35 

decrypted secret-key Ksu of the user 42: decrypts the encrypted data Cmuksu of the payee and the 

payment amount by the decrypted user secret-key Ksu: 



Mu=D(Kiu, Cmuksu). 

Then, order acceptance is executed. 

When the digital signature Smukvu is recognized by the 
public-key Kbu which the user 42 attached: 



mu=D(Kbu, Smukvu), 

a receipt is sent to the user 42 via the network 47. 

In this system, it is possible to prevent the unjustified use 
of the credit number because the credit card number entered 
in the order form is sent with encryption. 

Further, the following process enables reliable transac- 
tion: The shop 43 compresses the digital data Msl of the 
order form format, the credit card formal, advertisement 
catalog, a preview, products description, and content intro- 
duction of the database and menu/charge schedule/price list 
into a compressed document msl. with digital signature by 
the private-key Kvs of the shop 43: 



Smslkve=E(Kv»jnsl) 

and broadcasts it attaching the public-key Kbs of the shop 43 
so that users recognize the digital signature Sraslkvs by 
using the public-key kbs of the shop 43: 



nu'=D(Kb>.Smskv(i). 



Mu^D(Ksu,Cmuksu) 

and recognizes the described content, and the currency 
exchange process is executed. 

Furthermore, the bank recognizes the user 42 by Smuksu 
with the digital signature using the public-key Kbu added by 
the user 42: 

ma'^IXKbu. Smuksu) 

encrypts the confirmation document Ms2 by the public-key 
Kbu added by the user 42: 

Cro2kbu=«(KtniMs2) 

and sends it back to the user 42 via a network 47. 

The user who receives the encrypted confirmation docu- 
ment Cms2kbu from the bank 44 decrypts the encrypted 
confirmation document Cms2kbu by the private-key Kvu of 
the user 42: 



Kb2=D(Kvu.Cms2kbu) 

and confirms the content. 

According to the system, since the party to which the 
payment is made and the payment amount are encrypted and 
described in the check, it is possible to prevent the unjus- 
tified use of the content described in the check 



55 
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In addition, the blank check format Mf which is digital 
data is compressed into a compressed document mf and 
signed by digital signature by using (he private-key Kvf of 
the bank 44: 



Cmw2kfau=JXKbu>lw2) 



Smfkvf=£(Kvt r mf) 

to be broadcast attaching the public-key Kbf of the bank 44. 
The user recognizes the digital signature Smskvs by the 
public-key Kbs of the bank 44: 

mf=D(Kbf.Smflcvf). 

The confirmation document Ms is further compressed into a 
compressed document ms with digital signature by using the 
public-key Kbu added by the user: 

Saakbu=£(Kbu p ms) 

Thus, the bank can recognize the user who has entered on the 
check 

Embodiment 10 

At the wholesaler 45 of a maker or the like shown in FIG. 
5 (C), the wholesaler 45 forms a pro forma invoice format 
Mwl into a compressed data mwl and signs by digital 
signature by using the private-key Kvw of the wholesaler 
45: 



Saw 1 kw=fi(K vwun w 1 ) 

and broadcasts it attaching the public-key Kbw of the 
wholesaler 45 via the satellite 41 or CATV line. 

The user 42 which is a shop receives the broadcast pro 
forma invoice format Mwl and the public-key Kbw of the 
wholesaler 45. and encrypts the pro forma invoice request 
Mu by the public-key Kbw of the wholesaler 45: 



Cmukbw=B(Kbw>lu) 

and transmits it to the wholesaler 45 via the network 47. 

At this time, the pro forma invoice request Mu is com- 
pressed to compressed data mu when needed, and signed by 
the digital signature by using the private-key Kvu of the user 
42: 



Smfcvu=fi(Kvu,inu) 

to be transmitted together with the public-key Kbu of the 
user 42 to the wholesaler 45. 

The wholesaler 45 which receives the encrypted pro 
forma invoice request Cmukbw decrypts the encrypted pro 
forma invoice request Cmukbwby the private-key Kvw of 
the wholesaler 45: 



Mir=D(Kvu,Cmukbw) 

and recognizes the described pro forma invoice request Mu. 

Further, the wholesaler 45 recognizes the digital signature 
Smkvu by the public-key Kbu of the user 42: 



and then, transmits it to the user 42 via the network 47. 
The user 42 who receives the encrypted pro forma invoice 
5 Cmw2kbu from the wholesaler 45 decrypts it by the private - 
key Kvu of the user 42: 

Mw2^D(Kvu t Cmw2kbu). 

to According to this system, since the public-key and the 
private-key are used, there is no fear that the content of the 
pro forma invoice may be stolen to be used and also different 
pro forma invoice can be made for each user. 
In the systems shown in FIGS. 5 (a) through 5 (c), since 
15 each format and advertisement with no need of secrecy are 
broadcast via satellite or CATV broadcasting, the data can be 
effectively transmitted. 

As explained above, a multimedia system can be realized 
which combines general information media such as televi- 
20 sion broadcasting and audio broadcasting with data com- 
munication media using computers by using the crypt key 
system of the present invention, while the general informa- 
tion media and the data communication media has been 
available so far as an independent system each. 
25 a concrete structure for realizing the multimedia system 
will be explained as follows. 

The current television broadcasting is provided by means 
of an analog system through terrestrial wave broadcasting, 
satellite broadcasting or CATV broadcasting. In the 
30 meantime, most general data communication line is a public 
telephone line. 

In such a system structure, the crypt key system according 
to embodiment 1 shown in FIG. 2 can be used as a basic 
structure of a system for realizing a video-on-demand. The 
broadcasting station broadcasts the public- key Kbb by mul- 
tiplexing with the sub audio band of an audio zone in the 
scanning line of the vertical retrace interval of an analog 
television broadcasting program 

Users who wish to use the television program encrypt 
40 their own secret-key Ksu by the public-key Kbb broadcast 
from the broadcasting station: 
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rau-D(Xbu, Smkvu), 

makes an estimate of the pro forma invoice, encrypts the pro 
forma invoice Mw2 by the public-key Kbu of the user 42: 



65 



CDsukbb=fi(Kbt>JOw) 

and request for the use by transmitting the encrypted secret- 
key Cksukbb to the broadcasting station via a communica- 
tion line. 

The broadcasting station which decrypts the encrypted 
secret-key Cksukbb of the users by the private-key Kvb of 
the broadcasting station: 



k5u=D(Kvb,Ck5ukbb) 

scrambles the broadcasting program by the decrypted secret- 
key Ksu and broadcasts it 

The users descramble the scrambled program for use by 
their own secret-key Ksu. 

By adopting such a structure, persons other than those 
who request to use the program cannot use the program. 

As a basic structure of a system for realizing the video on 
demand and pay-per-view in such a system structure, the 
crypt key system shown in embodiment 4 or embodiment 5 
in FIG. 4 can be used. 

The broadcasting station 31 encrypts by the secret-key 
Ksb of the broadcasting station 31 the public-key Kbb of the 
broadcasting station 31: 
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cksbkbb=e<KMacsb) request for the purchase. To secure the safety of the trans- 

action at this time, encryption by the public-key cryptosys- 
and broadcasts it via the communication line 37 by multi- tcm or me secret-key cryptosystem and digital signature are 
plexing with the scanning line or a sub audio band of the u$ed wWl ^ s ^ tm according to embodiments 1 to 5. 
retrace interval of the analog television broadcasting pro- $ At this t^e. the content of transaction can be confirmed 
gram. when the purchase order is requested by adding the static 

User 38 who wishes to use the television program 38 ^sp^y picture of the product introduction together with the 
requests for the use by transmitting own public-key Kbu to OTdcr ^ ^ chcdL M a simplc method the order form 
the broadcasting station 31 via the communication line 37. format ^ the check format may be also transmitted as a 

The broadcasting station 31 scrambles the broadcasting 1Q picture s0 ^ necessary items are entered on the 

program by the secret-key Ksb of the broadcasting station format the check format which are incorporated as 

and broadcasts it via the communication line 37. At this a j^^y picture. 

time, the private-key Xvb of the broadcasting station 31 is fa ^ form foTma t and the check format 

encrypted by the public-key Kbu of user 38: can be transmitted via facsimile broadcasting which is 

15 multiplexed with the sub audio band of the audio zone. 
cfcvbkbu=E(Kbu4Cvb) By adopting such a method, an electronic market using 

electronic data interchange (EDI) by means of a current 
and is broadcast via the communication line 37. analog television method can be realized with the television 

The user 38 decrypts the encrypted private-key Ckvbkbu shopping, 
of the broadcasting station 31 by own private-key Kvu: jq These video-on-demand system and the pay-per-view 

system can be applied to the digital television broadcasting 
„ . _ „ r . . , other than the analog television broadcasting. 

Kvb=o otvu^tvbwu), ^ thc casc where a CATV line is used as a communication 

decrypts the encrypted secret-key Cksbkbb of the broadcast- line, both the broadcasting and data communication can be 
ing station 31 by the private-key Kvb of the decrypted 25 carried out with the CATV line only, 
broadcasting station 3 1 : Further, these video-on-demand system and pay-per-view 

system can be also applicable to transmission of high-quality 
audio data and moving picture data performed in computer 
Kib=D (Kvb,Cksbkbt>) communication network system using low-speed public 

and descrambles thc scrambled broadcasting program by the 30 telephone line or high-speed integrated services digital net- 
decrypted secret-key Ksb of the broadcasting station 31. work (ISDN) or in internet system connecting a plurality of 

By adopting such a structure, persons other than users computer communication network, 
who request to use the program cannot use them. Further, the As an apparatus to be used, the receiving apparatus and 
crypt key system can be applied to television shopping the communication apparatus can be incorporated in the 
which is frequently conducted currently by combining the 35 television set Apparatuses can be also constituted as a 
television broadcasting and thc telephone. separate apparatus by using a set top box or the like. 

In the currently conducted television shopping which uses It is understood that particular embodiments described 
the analog television broadcasting, product introduction and herein should not limit the present invention thereby. This 
sales method arc presented on the television screen so that invention can be practiced in connection with any video 
users record information on the sales method manually and 40 capture system. For example, an apparatus referred to as a 
request for the purchase thereof by a telephone on the basis personal computer television set which is becoming prtva- 
of the recorded information. lent or an apparatus combining a video capture device which 

On the contrary, the crypt key system according to the is realized as an IC card a PC card or an insertion board for 
present invention proposes a transmission of data of the transmitting a television signal and the personal computer 
order format and the check format by multiplexing with the 45 can be used. 

scanning tine of the vertical retrace interval or the sub audio Thus, a crypt key system has been described, which is 
band of the audio zone. applicable to a television system, a database system or an 

In the meantime, an apparatus called personal computer electronic data interchange, 
television set which integrates the personal computer and the I claim: 

television set or an apparatus which combines a video 50 1. A crypt key system comprising a broadcasting station, 
capture device which is realized as an IC card, a PC card or a database, a receiving apparatus, a data communication 
an insertion board and a personal computer allows incorpo- apparatus and a user terminal, wherein 
ration of the television picture. said database and said broadcasting station are connected 

With the combination of the multiplexed data such as an with a first communication means; 

order format and a check format with a video capture device, 55 sa ^ database and said data communication apparatus are 
an electronic television shopping can be conducted. connected with a communication line; 

In such a television shopping, when the television shop- ^ fe^^^g sUuon ^ ^ reC e iv ing apparatus are 
ping product introduction display is broadcast, the order connected with a radio wave; 

format and the check format are broadcast in data multi- ^ . . . _ # . , 

, . . ... . , ta . # . M said receiving apparatus and said user terminal are con- 

plexing with the scanning line of the vertical retrace interval 60 ~r * . . . 

*u w a' ^~~a ~7*u a- nected with a second communication means; 

or thc sub audio band of the audio zone. t t , ^ . . 

If the users operate thc apparatus when the product said data communication apparatus and said user terminal 
introduction display of the desired product to purchase is are connected with a third communication means; 

broadcast, the order format and the check format date are said database prepares a public-key and a private-key and 
incorporated with the static display picture. 65 supplies said public-key to said broadcasting station; 

Users who wish to use the television shopping enters said broadcasting station broadcasts said received public- 
necessary items on the order format or check format to key; 
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said receiving apparatus transmits said pu Mic-key that has 

been received to said user terminal; 
said user terminal stores said transmitted public-key; 
a user encrypts a secret-key of the user by said received 

public-key and transmits said secret-key at the time of 

request for the use of data which he desires, to said 

database; 

said database which has received the request for data use 
decrypts said secret-key of said user by said private-key 
and encrypts the data by said decrypted secret-key of 
said user to transmit the data to said data communica- 
tion apparatus via said communication line; and 

said user transmits the received data to said user terminal 
to decrypt said data by said secret-key. 

2. A crypt key system according to claim 1 wherein a 
digital signature of said database is provided on said public- 
ly* 

3. A crypt key system according to claim 1 wherein said 
first communication means is an online communication 
means. 

4. A crypt key system according to claim 3 wherein said 
online communication means is a dedicated line. 

5. A crypt key system according to claim 1 whereto said 
first communication means is an off-line communication 
means. 

6. A crypt key system according to claim 5 wherein said 
off-line communication means is a flexible disc. 

7. A crypt key system according to claim 1 wherein said 
second communication means is an online communication 
means. 

8. A crypt key system according to claim 7 wherein said 
online communication means is a dedicated Line. 

9. A crypt key system according to claim 1 wherein said 
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11. A crypt key system according to claim 1 wherein said 
third communication means is an online communication 
means. 

12. A crypt key system according to claim 11 wherein said 
online communication means is a dedicated line. 

13. A crypt key system according to claim 1 wherein said 
third communication means is an off-line communication 
means. 

14. A crypt key system according to claim 13 wherein said 
off-line communication means is a flexible disc 

15. A crypt key system comprising a CATV station, a data 
managing center, a receiving apparatus, a data communica- 
tion apparatus, and a user terminal, wherein 

a public-key of a user is registered with said data man- 
aging center in advance; 

said data managing center encrypts a public-key of said 
data managing center by said public-key of each user 
and generates a digital signature on said encrypted 
public-key of said data managing center by a private- 
key of said data managing center; 

encrypted said public-key of said data managing center 
and said digital signature of data managing center are 
sent to said CATV station; 

said CATV station broadcasts received said encrypted 
public-key of data managing center and said digital 
signature; 

said user decrypts said received encrypted public-key of 
data managing center by said private-key of said user 
and recognizes said digital signature by decrypted said 
public-key of said data managing center. 

16. A crypt key system according to claim 15 wherein 
uncrypted user identification information of each user is 



.econda^^ 35 ***** added to the encrypted public-key of said data 
mcans managing center to be broadcast 

10. A crypt key system according to claim 9 wherein said 
off-line communication means is a flexible disc. * * - 
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